/
REST Security Service
REST Security Service
- bcarlsen (Unlicensed)
Owned by bcarlsen (Unlicensed)
Oct 31, 2014
Loading data...
Overview
Documents the REST Security Service.
For a self-documenting Swagger API, see http://snomed.terminology.tools/term-server-rest/index.html.
This is a placeholder page with basic information and will be developed to fully document this aspect of the system.
Details
The internal security API supports mechanisms for authentication, authorization (e.g. authorization token verification and timeout support), and logging out. The implementation of the security handler is configurable and the system provides two handlers: a default handler for completely bypassing authentication using a “guest” user, and an implementation that natively supports the IHTSDO security and user management environment.
The REST security service provides two calls:
- Authenticate – takes a username/password and returns an authorization token
- Logout – takes an authorization token and expires it
References/Links
- n/a